CVE-2023-52656
MEDIUMLinux Kernel 5.1-5.4.273 - Unauthenticated Remote Code Execution via io_uring SCM_RIGHTS Handling
Title source: llmDescription
In the Linux kernel, the following vulnerability has been resolved: io_uring: drop any code related to SCM_RIGHTS This is dead code after we dropped support for passing io_uring fds over SCM_RIGHTS, get rid of it.
References (8)
Core 8
Core References
Third Party Advisory
https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html
Scores
CVSS v3
5.5
EPSS
0.0001
EPSS Percentile
0.7%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
partial
Details
Status
published
Products (18)
debian/debian_linux
10.0
Linux/Linux
< 5.1
Linux/Linux
2b188cc1bb857a9d4701ae59aa7768b5124e262e - 6e5e6d274956305f1fc0340522b38f5f5be74bdb
Linux/Linux
2b188cc1bb857a9d4701ae59aa7768b5124e262e - 6fc19b3d8a45ff0e5d50ec8184cee1d5eac1a8ba
Linux/Linux
2b188cc1bb857a9d4701ae59aa7768b5124e262e - 88c49d9c896143cdc0f77197c4dcf24140375e89
Linux/Linux
2b188cc1bb857a9d4701ae59aa7768b5124e262e - a3812a47a32022ca76bf46ddacdd823dc2aabf8b
Linux/Linux
2b188cc1bb857a9d4701ae59aa7768b5124e262e - a6771f343af90a25f3a14911634562bb5621df02
Linux/Linux
2b188cc1bb857a9d4701ae59aa7768b5124e262e - cfb24022bb2c31f1f555dc6bc3cc5e2547446fb3
Linux/Linux
2b188cc1bb857a9d4701ae59aa7768b5124e262e - d909d381c3152393421403be4b6435f17a2378b4
Linux/Linux
5.1
... and 8 more
Published
May 14, 2024
Tracked Since
Feb 18, 2026